Hello, Please enjoy this release with improved CARP utility and a number of smaller fixes and updates for the operating system and third party tools. You can now also toggle logging directly from the rule overview to make debugging easier. Here is the full list of changes: o system: try all backups for automatic revert […]

Hi there, This update ships the latest FreeBSD security advisories along with several smaller improvements and fixes. Sunny Valley Networks is the first vendor to introduce additional software to the plugin framework in the form of the Sensei plugin. Here are the full patch notes: o system: missing “” in legacy output via Syslog-ng o […]

Dear all, We do not wish to keep you from enjoying your summer time, but this is a recommended security update enriched with reliability fixes for the new 19.7 series.  Of special note are performance improvements as well as a fix for a longstanding NAT before IPsec limitation. Here are the full patch notes: o […]

Hi there, For four and a half years now, OPNsense is driving innovation through modularising and hardening the open source firewall, with simple and reliable firmware upgrades, multi-language support, HardenedBSD security, fast adoption of upstream software updates as well as clear and stable 2-Clause BSD licensing. 19.7, nicknamed “Jazzy Jaguar”, embodies an iteration of what […]

Hi there, For four and a half years now, OPNsense is driving innovation through modularising and hardening the open source firewall, with simple and reliable firmware upgrades, multi-language support, HardenedBSD security, fast adoption of upstream software updates as well as clear and stable 2-Clause BSD licensing. We thank all of you for helping test, shape […]

Good morning everyone, Small update as we are nearing the end of the 19.1 series.  Yes, it is that time of the year again with a release candidate only a few days away and a final release date set to July 17. Here are the full patch notes: o system: change certificate manager actions to […]

Hi there, Small 19.1 series update mainly focusing on LDAP group synchronisation and assorted OpenVPN improvements.  Two regressions of previous versions have been fixed as well. Here are the full patch notes: o system: add LDAP group synchronisation feature o system: allow an arbitrary group for sudo like ssh login o system: stop using a […]

Good day to you all, This update addresses several privilege escalation issues in the access control implementation and new memory disclosure issues in Intel CPUs. We would like to thank Arnaud Cordier and Bill Marquette for the top-notch reports and coordination. Here are the full patch notes: o system: address CVE-2019-11816 privilege escalation bugs[1] (reported […]

Hello, hello! This update features a number of improvements such as link-local support for bridges, HA sync consolidation, adding local CAs to the trusted SSL certificates for most of the system download capabilities, plugin-based PAM authentication rework for IPsec and the web proxy as well as third party fixes for hostapd / wpa_supplicant 2.8 and […]

Hi there, This update brings a smaller number of fixes and improvements as well as the latest PHP version update. With a heavy heart we disable E_WARNING messages in the PHP error reporting. It was been implemented in 2015 to improve code quality and it did just that, but with the latest PHP 7.2 jump […]